Saturday, October 31, 2015

2015-10-31 Saturday - My Current Go Reading List






















...and somewhat related...







Sunday, October 25, 2015

2015-10-25 Sunday - Docker Resouces

I'm experimenting with Docker Toolbox 1.8.3
https://www.docker.com/docker-toolbox

https://www.docker.com/

http://docs.docker.com/windows/started/

https://hub.docker.com/explore/

2015-10-25 Sunday - New Books Ordered


The Docker Book: Containerization is the new virtualization
http://www.amazon.com/Docker-Book-Containerization-new-virtualization-ebook/dp/B00LRROTI4
$10.94 for the Kindle Edition


Docker: Up & Running
http://www.amazon.com/Docker-Up-Running-Karl-Matthias-ebook/dp/B00ZGRS4XM
$17.73 for the Kindle Edition


The Go Programming Language (Addison-Wesley Professional Computing Series) 1st Edition
$32.84 for the hardback (pre-ordered, publication date Nov 8th)


You Don't Know JS: Async & Performance
$13.68 for the Kindle Edition


Modern PHP: New Features and Good Practices
$15.87 for the Kindle Edition


Introductory Graph Theory (Dover Books on Mathematics) 
$8.94 for the Kindle Edition

Saturday, October 03, 2015

2015-10-03 Saturday - Hidden Structure of System Architecture

An interesting Harvard Business School whitepaper by Carliss Baldwin, Alan MacCormack, and John Rusnak
Hidden Structure: Using Network Methods to Map System Architecture

2015-10-03 Saturday - Groups, Roles, Permissions

Today I'm spending some time researching various solutions (Commercial, SaaS, Open Source)   that may offer some ideas for implementing a custom framework for the concept of Identity Management, Access Control, Groups, Roles, and Permissions. This posting is a placeholder for resources that I find - that may be of interest/use to others.

Concepts...............................................................
  • Identity Management Objects (IDM)
    • Realm
    • Group
    • Roles
    • Permission
    • User
    • Agent


General...............................................................

https://lostechies.com/derickbailey/2011/05/24/dont-do-role-based-authorization-checks-do-activity-based-checks/

http://gitreview.com/packages/t/permissions/
- 131 packages tagged with 'permissions'
http://gitreview.com/packages/t/authorization/
- 339 packages tagged with 'authorization'
http://gitreview.com/packages/t/rbac/
- 82 packages tagged with 'rbac'


Commercial Solutions - Access/Identity Management...............................................................




SaaS - Identity API...............................................................





Go...............................................................

goRBAC provides a lightweight role-based access control (RBAC) implementation in Golang
https://github.com/mikespook/gorbac


PHP...............................................................

https://laracasts.com/discuss/channels/general-discussion/roles-and-permissions-in-laravel-5
https://laracasts.com/discuss/channels/laravel/which-package-is-best-for-roles-permissions
https://github.com/laracasts/Users-and-Roles-in-Laravel
https://laracasts.com/series/whats-new-in-laravel-5-1/episodes/16
https://github.com/laracasts/laravel-5-roles-and-permissions-demo
https://laracasts.com/lessons/users-and-roles
http://laravel.com/docs/5.1/authentication
http://laravel.com/docs/5.1/authorization

A Laravel 5 Boilerplate project
https://github.com/rappasoft/laravel-5-boilerplate
https://github.com/rappasoft/laravel-5-boilerplate#permission-dependencies

A framework agnostic authentication & authorization system
https://github.com/cartalyst/sentinel
http://igg.me/at/sentinel-open-source

https://github.com/cartalyst/sentry
- [DEPRECATED] framework agnostic authentication & authorization system
https://www.indiegogo.com/projects/sentinel-open-source#/

Roles & Permissions for the Laravel 5 Framework
https://github.com/rappasoft/vault
[DEPRECATED]


Role-based permissions for Laravel 5
https://github.com/Zizaco/entrust
- an interesting, rudimentary capability

Authorization PHP package for Laravel 4, 5.0, and 5.1
https://github.com/efficiently/authority-controller
- a port of CanCan


package for handling roles and permissions in Laravel 5 (5.1 and 5.0)
https://github.com/romanbican/roles
- supports inheritance of permissions...
- can attach/detach permissions to a role or directly to a specific user
- some interesting ideas/features...

Laravel 5 roles and permissions package with support for Laravel's authentication contract
https://github.com/caffeinated/shinobi/


Simple permission checker for Nette Framework
https://github.com/iPublikuj/permissions

https://nette.org/
https://doc.nette.org/en/2.3/
https://doc.nette.org/en/2.3/getting-started
https://doc.nette.org/en/2.3/access-control


https://github.com/zendframework/zend-permissions-rbac
http://framework.zend.com/docs
http://framework.zend.com/manual/current/en/modules/zend.authentication.intro.html
http://framework.zend.com/manual/current/en/modules/zend.permissions.acl.intro.html
http://framework.zend.com/manual/current/en/modules/zend.permissions.rbac.intro.html

http://stackoverflow.com/questions/15718280/zend-framework-2-with-zfc-rbac-database-population

Role-based access control module to provide additional features on top of Zend\Permissions\Rbac
https://github.com/ZF-Commons/zfc-rbac

https://github.com/ZF-Commons/ZfcAcl
[DEPRECATED]



User Access Control List for Zend Framework 2
https://github.com/kaushalkishorejaiswal/UsersACL


http://symfony.com/doc/current/cookbook/security/index.html


- very good overview of the symphony features...


Provides user management for your Symfony2 Project - Compatible with Doctrine ORM and ODM and Propel
https://github.com/FriendsOfSymfony/FOSUserBundle



http://www.yiiframework.com/doc/guide/1.1/en/topics.auth
http://www.benjaminlhaas.com/blog/installing-yii-users-and-rights-5-steps
http://www.yiiframework.com/

Authentication, Authorization, and API Proxy Service
(An EVE online authentication and mediated API access application.)
https://github.com/bravecollective/core
https://github.com/bravecollective/php-api



Java/Scala/JVM...............................................................

Apache Syncope - an Open Source system for managing digital identities in enterprise
http://syncope.apache.org/


authorization module for the Play framework

- see Identity Model

Spring Security

pack4j - authenticate with Facebook, Twittter, or Google



JavaScript...............................................................



Roles and permissions system for Nodejs



Python...............................................................




Pyramid Web Framework



Ruby...............................................................

https://www.ruby-toolbox.com/categories/rails_authorization
list of solutions...



Authorization Gem for Ruby on Rails
https://github.com/ryanb/cancan
simple authorization solution for Rails which is decoupled from user roles...all permissions are stored in a single location

Authority helps you authorize actions in your Rails app
https://github.com/nathanl/authority

https://github.com/be9/acl9

https://github.com/the-teacher/the_role

https://github.com/alanning/meteor-roles

Dashboard that allows you to manage roles and permissions for Auth0 users
https://github.com/auth0/auth0-roles-permissions-dashboard-sample

simple authorization solution for Rails which is decoupled from user roles...all permissions are stored in a single location
https://www.ruby-toolbox.com/categories/rails_authorization


Misc...............................................................

https://docs.reduxframework.com/core/fields/using-permissions/